1. Who we are
LearnHub ("we", "us", "our") is a learning management platform accessible at learnhublb.online. We are committed to protecting your personal data and your right to privacy.
2. What data we collect
- Account data: your name, email address, and password (stored encrypted).
- Profile data: your role (student, teacher, admin) and optional avatar.
- Usage data: courses you enroll in, assignments you submit, quizzes you attempt, and progress records.
- Payment data: subscription plan. We do not store card numbers — payments are processed by Stripe.
- Communications: support messages and AI chat history (Max plan only).
- Technical data: IP address, browser type, and usage logs for security and debugging.
3. How we use your data
- To create and manage your account.
- To deliver courses, assignments, and educational content.
- To process subscription payments via Stripe.
- To send transactional emails (account confirmation, password reset).
- To protect the platform against fraud, abuse, and security threats.
- To improve our services based on aggregated, anonymised usage data.
4. Data sharing
We do not sell your personal data. We share it only with:
- Supabase — database and authentication hosting.
- Stripe — payment processing.
- Vercel — application hosting and deployment.
- Groq — AI chat completions (Max plan only; messages are not stored by Groq beyond the request).
5. Data retention
We retain your data for as long as your account is active. You may request deletion of your account and associated data at any time by contacting us. Billing records are retained for 7 years as required by law.
6. Your rights
Depending on your location, you may have the right to access, correct, delete, or export your personal data. To exercise any of these rights, contact us at the email below.
7. Cookies
We use essential cookies only — to maintain your login session. We do not use tracking or advertising cookies.
8. Security
We use industry-standard measures including encrypted connections (HTTPS/TLS), hashed passwords, row-level security on our database, and rate limiting on authentication endpoints.